Despite having an apparent lull in the first half of 2019, phishing will remain a staple in a cybercriminals arsenal, and they’re not going to stop using it. The latest example is a phishing campaign dubbed Heatstroke, based on a variable found in their phishing kit code. Heatstroke demonstrates how far phishing techniques have evolved from merely mimicking legitimate websites and using diversified social engineering tactics with its use of more sophisticated techniques such as steganography.